Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wyflyshop.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
98:7C:72:52:36:C4:76:B2:79:F2:0D:49:3A:41:ED:AF:29:D6:B1:D8:EE:21:7D:8E:7E:6C:B1:1D:81:52:D8:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
seconds.life
*.seconds.life
*.lq.seconds.life
*.swift.seconds.life
*.tx.seconds.life
*.ww25.seconds.life
08556a.com
*.08556a.com
1142clx301.top
*.1142clx301.top
*.9441746cec.1142clx301.top
763924.top
*.763924.top
9001rf.xyz
*.9001rf.xyz
*.d.9001rf.xyz
aclokrgjprvyambjkwlo.com
*.aclokrgjprvyambjkwlo.com
*.cpcalendars.gtaivguessr.com
gtaivguessr.com
*.gtaivguessr.com
*.ww2.gtaivguessr.com
*.d.h01itwc217.xyz
h01itwc217.xyz
*.h01itwc217.xyz
*.admin.ljkgz7690.xyz
*.d.ljkgz7690.xyz
*.dev.ljkgz7690.xyz
ljkgz7690.xyz
*.ljkgz7690.xyz
*.mail.ljkgz7690.xyz
*.s3.ljkgz7690.xyz
*.m.melanincapital.com
melanincapital.com
*.melanincapital.com
*.docs.merchandise.live
merchandise.live
*.merchandise.live
mistbyte.rest
*.mistbyte.rest
*.s7prta.mistbyte.rest
*.hostmaster.ocurb.com
*.img1-fg.ocurb.com
*.m.ocurb.com
*.nnrkl2.ocurb.com
ocurb.com
*.ocurb.com
*.1.theambitiongroup.info
*.61848j.theambitiongroup.info
*.a.theambitiongroup.info
*.api.theambitiongroup.info
*.app.theambitiongroup.info
theambitiongroup.info
*.theambitiongroup.info
*.www.theambitiongroup.info
*.cpcontacts.thease.ca
thease.ca
*.thease.ca
tobacco.tv
*.tobacco.tv
*.affiliate.toolbird.io
*.api.toolbird.io
*.app.toolbird.io
*.docs.toolbird.io
*.images.toolbird.io
toolbird.io
*.toolbird.io
*.1.trendpromoinnovate.com
*.12.trendpromoinnovate.com
*.accounts.trendpromoinnovate.com
*.admin.trendpromoinnovate.com
*.app.trendpromoinnovate.com
*.mail.trendpromoinnovate.com
*.mta-sts.trendpromoinnovate.com
*.portal.trendpromoinnovate.com
trendpromoinnovate.com
*.trendpromoinnovate.com
*.ww99.trendpromoinnovate.com
*.www.trendpromoinnovate.com
u08556.com
*.u08556.com
*.store.wyflyshop.com
wyflyshop.com
*.wyflyshop.com
*.mail.xecc.com.cn
xecc.com.cn
*.xecc.com.cn
*.random.xn--birnenlikr-mcb.de
xn--birnenlikr-mcb.de
*.xn--birnenlikr-mcb.de
Other domains in certificate